Follow:

 

VirTool:Win32/CeeInject


VirTool:Win32/CeeInject is a detection for certain forms of obfuscated malware. Malicious programs detected as VirTool:Win32/CeeInject are used by different malware families in the wild to protect them from detection or analysis.



What to do now

To detect and remove this threat and other malicious software that may be installed on your computer, run a full-system scan with an appropriate, up-to-date, security solution. The following Microsoft products detect and remove this threat:

For more information on antivirus software, see http://www.microsoft.com/windows/antivirus-partners/.

Threat behavior

VirTool:Win32/CeeInject is a detection for certain forms of obfuscated malware. Malicious programs detected as VirTool:Win32/CeeInject are used by different malware families in the wild to protect them from detection or analysis.

One such sample of VirTool:Win32/CeeInject obfuscates a Bitcoin mining client, which may be installed in a computer to generate Bitcoins without the user's knowledge.

Analysis by Stefan Sellmer


Symptoms

There are no common symptoms associated with this threat. Alert notifications from installed antivirus software may be the only symptoms.


Prevention


Alert level: Severe
First detected by definition: 1.45.287.0
Latest detected by definition: 1.187.146.0 and higher
First detected on: Oct 07, 2008
This entry was first published on: Nov 23, 2007
This entry was updated on: Nov 02, 2011

This threat is also detected as:
  • Win32/Injector.KAN trojan (ESET)
  • Virus.Win32.CeeInject (Ikarus)
  • Trojan.Win32.Miner.p (Kaspersky)
  • TROJ_INJECTR.VI (Trend Micro)